OT Security Architect

Role Overview

The OT Security Architect will design and implement secure architectures for critical Operational Technology (OT) and Industrial Control System (ICS) environments. The role focuses on protecting production networks and assets through proactive architecture design, network segmentation, and advanced monitoring using leading OT security platforms.

You will work closely with IT, engineering, and operations teams to ensure security controls are embedded across all layers of OT infrastructure, aligning with standards such as ISA/IEC 62443 and NIST CSF.

Key Responsibilities:

• Architect, design, and maintain secure OT network infrastructures for ICS/SCADA and industrial environments.
• Deploy, configure, and optimize OT visibility and threat detection platforms (Dragos, Nozomi Networks, Claroty).
• Conduct OT/ICS risk assessments, threat modeling, and security posture reviews.
• Develop and enforce OT security architecture standards, policies, and design blueprints.
• Lead the integration of OT threat monitoring with SOC and SIEM environments.
• Implement network segmentation strategies based on the Purdue Model and Zero Trust principles.
• Collaborate with operations and engineering teams to ensure secure-by-design implementations in new projects.
• Evaluate new OT security technologies and provide architecture governance across ongoing initiatives.
• Support incident response and forensics investigations within OT networks.
• Align OT security controls with organizational cybersecurity frameworks and compliance requirements.

Skills & Experience Required:

• Bachelor’s degree in Cybersecurity, Computer Engineering, or related discipline.
• 8+ years of experience in cybersecurity, with strong experience in OT/ICS security architecture.
• Hands-on experience with multiple plaform deployment, configuration, and incident response integration.
• Deep understanding of network security, firewalls, VLANs, IDS/IPS, and secure remote access in OT environments.
• Experience with Linux command line, Docker, and scripting languages (Python, Shell) is a plus..
• Excellent stakeholder communication and ability to bridge IT-OT collaboration.
• Preferred certifications: GICSP, GRID, ISA/IEC 62443 Expert, CISSP, or SABSA.

Salt is acting as an Employment Agency in relation to this vacancy.